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DETAILED ACTION 

1 . This action is responsive to communication: original application filed on 2 October 
2003, with acknowledgement of foreign priority date of 2 October 2002. 

2. Claims 1-8 are currently pending in this application. Claim 1 is an independent claim. 

OBJECTIONS 
Arrangement of the Specification 

3. As provided in 37 CFR 1 .77(b), the specification of a utility application should include 
the following sections in order. Each of the lettered items should appear in upper case, without 
underlining or bold type, as a section heading. If no text follows the section heading, the phrase 
"Not Applicable" should follow the section heading: 

(a) TITLE OF THE INVENTION. 

(b) CROSS-REFERENCE TO RELATED APPLICATIONS. 

(c) STATEMENT REGARDING FEDERALLY SPONSORED RESEARCH OR 

DEVELOPMENT. 

(d) THE NAMES OF THE PARTIES TO A JOINT RESEARCH AGREEMENT. 

(e) INCORPORATION-BY-REFERENCE OF MATERIAL SUBMITTED ON A 

COMPACT DISC. 

(f) BACKGROUND OF THE INVENTION. 

(1) Field of the Invention. 

(2) Description of Related Art including information disclosed under 37 CFR 1.97 
and 1.98. 

(g) BRIEF SUMMARY OF THE INVENTION. 

(h) BRIEF DESCRIPTION OF THE SEVERAL VIEWS OF THE DRAWING(S). 

(i) DETAILED DESCRIPTION OF THE INVENTION. 

(j) CLAIM OR CLAIMS (commencing on a separate sheet). 

(k) ABSTRACT OF THE DISCLOSURE (commencing on a separate sheet). 

(1) SEQUENCE LISTING (See MPEP § 2424 and 37 CFR 1.821-1.825. A "Sequence 
Listing" is required on paper if the application discloses a nucleotide or amino 
acid sequence as defined in 37 CFR 1 .821(a) and if the required "Sequence 
Listing" is not submitted as an electronic document on compact disc). 

The specification is objected to because the Applicant did not cite any cross-references to 

related patent applications. Of the following: 10/659,158 and 10/634,700 at least one of is 

considered related by the Examiner because they have at least one common inventor and the 
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claims address multipoint and secure communications. Applicant needs to acknowledge, where 
applicable the related applications for better understanding of the invention. Appropriate 
correction required. 

Content of Specification 

(a) Title of the Invention : See 37 CFR 1.72(a) and MPEP § 606. The title of the 
invention should be placed at the top of the first page of the specification unless 
the title is provided in an application data sheet. The title of the invention should 
be brief but technically accurate and descriptive, preferably from two to seven 
words may not contain more than 500 characters. 

(b) Cross-References to Related Applications : See 37 CFR 1.78 and MPEP § 20 1 . 1 1 . 

(c) Statement Regarding Federally Sponsored Research and Development : See MPEP 
§310. 

(d) The Names Of The Parties To A Joint Research Agreement : See 37 CFR 1 .71(g). 

(e) Incorporation-Bv-Reference Of Material Submitted On a Compact Disc: The 
specification is required to include an incorporation-by-reference of electronic 
documents that are to become part of the permanent United States Patent and 
Trademark Office records in the file of a patent application. See 37 CFR 1 .52(e) 
and MPEP § 608.05. Computer program listings (37 CFR 1.96(c)), "Sequence 
Listings" (37 CFR 1.821(c)), and tables having more than 50 pages of text were 
permitted as electronic documents on compact discs beginning on September 8, 
2000. 

(f) Background of the Invention : See MPEP § 608,0 1(c). The specification should 
set forth the Background of the Invention in two parts: 

(1) Field of the Invention : A statement of the field of art to which the 
invention pertains. This statement may include a paraphrasing of the 
applicable U.S. patent classification definitions of the subject matter of the 
claimed invention. This item may also be titled "Technical Field." 

(2) Description of the Related Art including information disclosed under 37 
CFR 1.97 and 37 CFR 1.98 : A description of the related art known to the 
applicant and including, if applicable, references to specific related art and 
problems involved in the prior art which are solved by the applicant's 
invention. This item may also be titled "Backgroimd Art." 
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(g) Brief Summary of the Invention : See MPEP § 608.01(d). A brief summary or 
general statement of the invention as set forth in 37 CFR 1.73. The summary is 
separate and distinct from the abstract and is directed toward the invention rather 
than the disclosure as a whole. The summary may point out the advantages of the 
invention or how it solves problems previously existent in the prior art (and 
preferably indicated in the Background of the Invention). In chemical cases it 
should point out in general terms the utility of the invention. If possible, the 
nature and gist of the invention or the inventive concept should be set forth. 
Objects of the invention should be treated briefly and only to the extent that they 
contribute to an understanding of the invention. 

(h) Brief Description of the Several Views of the Drawing(s) : See MPEP § 608.01(f). 
A reference to and brief description of the drawing(s) as set forth in 37 CFR 1.74. 

(i) Detailed Description of the Invention : See MPEP § 608.01(g). A description of 
the preferred embodiment(s) of the invention as required in 37 CFR 1.71. The 
description should be as short and specific as is necessary to describe the 
invention adequately and accurately. Where elements or groups of elements, 
compounds, and processes, which are conventional and generally widely known 
in the field of the invention described and their exact nature or type is not 
necessary for an understanding and use of the invention by a person skilled in the 
art, they should not be described in detail. However, where particularly 
complicated subject matter is involved or where the elements, compounds, or 
processes may not be commonly or widely known in the field, the specification 
should refer to another patent or readily available publication which adequately 
describes the subject matter. 

(j) Claim or Claims : See 37 CFR 1.75 and MPEP § 608.01(m). The claim or claims 
must commence on separate sheet or electronic page (37 CFR 1.52(b)(3)). Where 
a claim sets forth a plurality of elements or steps, each element or step of the 
claim should be separated by a line indentation. There may be plural indentations 
to further segregate subcombinations or related steps. See 37 CFR 1.75 and 
MPEP § 608.01 (i)-(p). 

(k) Abstract of the Disclosure : See MPEP § 608.01(f). A brief narrative of the 

disclosure as a whole in a single paragraph of 150 words or less commencing on a 
separate sheet following the claims. In an international application which has 
entered the national stage (37 CFR 1.491(b)), the applicant need not submit an 
abstract commencing on a separate sheet if an abstract was published with the 
international application under PCT Article 2 1 . The abstract that appears on the 
cover page of the pamphlet published by the International Bureau (IB) of the 
World Intellectual Property Organization (WIPO) is the abstract that will be used 
by the USPTO. See MPEP § 1893.03(e). 
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(1) Sequence Listing. See 37 CFR 1.821-1,825 and MPEP §§ 2421-2431. The 

requirement for a sequence listing applies to all sequences disclosed in a given 
application, whether the sequences are claimed or not. See MPEP § 2421.02. 

4. The content of the specification is objected to because the Applicant did not cite any 
cross-references to related patent applications. Of the following: 10/659,158 and 10/634,700 at 
least one of is considered related by the Examiner because they have at least one common 
inventor and the claims address multipoint and secure communications. Applicant needs to 
acknowledge and describe, where applicable the related applications for better understanding of 
the invention. Appropriate correction required. 

Claim Rejections - 35 USC §103 

5. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 

obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or 
described as set forth in section 102 of this title, if the differences between the subject matter 
sought to be patented and the prior art are such that the subject matter as a whole would have 
been obvious at the time the invention was made to a person having ordinary skill in the art to 
which said subject matter pertains. Patentability shall not be negatived by the maimer in which 
the invention was made. 

6. Claims 1-8, are rejected under 35 U.S.C. 103(a) as being unpatentable over RFC 2406 IP 
Encapsulating Security Payload (ESP) published in 1998 (hereinafter ESP_2406) in view of 
Brustoloni et al. US Patent No. 6,963,982 (hereinafter '982). 

As to independent claim 1, ^^A method of transmitting data securely from a source 
point to a target point in a point-to-multipoint communication network, the method 
comprising the steps of:" is taught in ESP_2406 page 1, first paragraph, "IP Encapsulating ^ 
Security Payload (ESP) This document specifies an Internet standards track protocol for the 
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Internet community", note communication over the Intemet are interpreted equivalent to 'point- 
to-multipoint', also the protocol is directed to secure communication, i.e. 'Security Payload'; 

"(d) forming an encryption tag field including information about an encryption tag 
type indicating whether transmission data is encryption-enabled or encryption-disabled'' is 
shown in ESP_2406 page 3, paragraph "2. Encapsulating Security Payload Packet Format The 
protocol header (Ipv4, Ipv6, or Extension) immediately preceding the ESP header will contain 
the value 50", note if the option is selected then encryption is used; 

^^(b) forming a packet data field including encrypted transmission data" is disclosed 
in ESP_2406 page 11 , "3 . 3 .2. Packet Encryption . . . 3 . encrypts the result (Payload Data, 
Padding, Pad Length, and Next Header) using the key, encryption algorithm"; 

«(c) forming a first integrity check field" is taught in ESP_2406 page 12, "3.3.4 
Integrity Check Value Calculation"; 

'^(d) forming a length and type field indicating the sum of the lengths of the packet 
data field and the first integrity check field; and," is shown in ESP_2406 page 7, "2.7 
Authentication Data The Authentication Data is a variable-length field containing an Integrity 
Check Value (ICV) computed over the ESP packet minus the Authentication Data. The length of 
the filed is specified by the authentication function selected . . . The authentication algorithm 
specification MUST specify the length of ICV and the comparison rules and processing steps for 
validation"; 

^^(e) forming a transmission frame including the formed fields from steps (a)-(d), a 
source address field indicating the address of the source point and a destination address 
field indicating the address of the target point" is disclosed in ESP_2406 pages 7-9 "3.1 ESP 
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Header Location . . . Tunnel mode ESP may be employed in either hosts or security gateways. 
When ESP is implemented in a security gateway (to protect subscriber transit traffic), tunnel 
mode must be used. In tunnel mode, the "irmer" IP header carriers the ultimate source and 
destination addresses, while an "outer" IP header may contain distinct IP addresses, e.g., 
addresses of security gateways"; 

the following is note explicitly taught in ESP_2406: ^indicating a CRC (Cyclic Redundancy 
Check) check sum of the encrypted transmission data" however '982 teaches "modify the 
TCP or UDP checksum by adding to the TCP or UDP checksum incorporated in the TCP or 
UDP header: (a) the difference between the global and the private source IP addresses, and (b) 
the difference between the global and private source port numbers in order to compensate for the 
changes made to the packet in these steps or that will be made to the packet by the NAT 
translation; and iv) process any ALG that may be necessary. 4. Then, for the AH protocol, given 
that NAT will be translating the client's source IP address to the previously leased NAT global IP 
address, compute the packet's AH authentication data as if the source IP address were equal to 
that global IP address and incorporate that authentication data into the AH header" in col. 10, 
lines 43-51, note '982 incorporates the checksum into the ESP transmission. 

It would have been obvious to one of ordinary skill in the art at the time of the invention 
of a secure communications protocol taught in ESP_2406 to include a means to improve the 
authentication data in secure communication. One of ordinary skill in the art would have been 
motivated to perform such a modification because several problems hamper the interoperation of 
security using the ESP protocol see '982 (col. 3, lines 5 et seq.). "Several problems hamper the 
interoperation of IPSec and NAT, For the AH protocol, when NAT translates an address, it 
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would need to correspondingly adjust, through an ALG, the packet's authentication data, which 
depends on the packet's address. If the authentication data is not adjusted the packet will be 
rejected at the destination. In order for the NAT to modify the authentication data, however, the 
NAT would need to know the authentication key. Since that key is maintained private in order to 
protect the integrity of the security architecture, NAT is unable to modify the authentication data 
in the packet to compensate for the address translations. For the ESP protocol, interoperability 
with NAT is problematic in the transport mode. In the transport mode of the ESP protocol, when 
NAT translates the source or destination IP address, it would need to correspondingly adjust the 
TCP or UDP checksum, which is calculated over the packet's IP "pseudo-header," TCP or UDP 
header, and packet data. The pseudo-header includes the source and destination IP addresses. 
However, since the checksum is encrypted, along with the rest of the TCP or UDP header and 
data, NAT cannot make the necessary adjustment to this checksum without having access to the 
encryption key. For end-to-end security, the encryption key must not be revealed to intermediate 
nodes including NAT. Thus, NAT is not interoperable with the ESP protocol in the transport 
mode". 

As to dependent claim 2, ^^further comprising the step (f) of forming a second 
integrity check field indicating a check sum of the transmission frame and adding the 
second integrity check field to the transmission frame for a subsequent transmission" 

however '962 teaches adding the second integrity check field in col. 10, line 43-5 1 . The 
motivation to combine ESP_2406 and '982 is the same as stated above in claim 1. 

As to dependent claim 3, ^^further comprising the steps of: (g) receiving and 
performing a first integrity check on the transmission frame using the second integrity 
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check field; (h) decrypting the transmission frame without the second integrity check field; 
and, (i) performing a second integrity check on the decrypted transmission frame using the 
first integrity check field" however * 962 teaches "From step 4, when NAT performs its 
translation and the packet is received at its destination at the foreign address, the packet will be 
properly authenticated if no transmission errors have occurred. From step 3, when the TCP or 
UDP checksum is computed over the received authenticated and decrypted packet, it will match, 
absent a transmission error, the modified TCP or UDP checksum that is incorporated in the TCP 
or UDP header, at the client, before authentication and encryption" in col. 10, line 63 through 
col. 11, line 3. The motivation to combine ESP_2406 and *982 is the same as stated above in 
claim 1. 

As to dependent claim 4, "wherein the transmission frame is decrypted according to 
the destination address field of the decryption step (h)" however '962 teaches decryption in 
col. 10, line 63 through col. 11, line 3. The motivation to combine ESP_2406 and '982 is the 
same as stated above in claim 1. 

As to dependent claim 5, "further comprising the step (j) of determining whether 
the check sum of the transmission frame is identical to the value of the second integrity 
check field of the first integrity check step (g)" however '962 teaches the checksum is 
computed and decrypt the packet if it matches, i.e. 'is identical' in col. 10, line 63 through col. 
1 1, line 3. The motivation to combine ESP_2406 and '982 is the same as stated above in claim 1. 

As to dependent claim 6, "if the check sum is identical, determining that there is no 
link error in the point-to-multipoint communication network" however '962 teaches "When 
the client computes the checksum over the received packet after translations made by NAT and 
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steps (i*) through (iv') above, the checksum will be correct, absent a transmission error." in col. 
11, lines 30-33. The motivation to combine ESP_2406 and '982 is the same as stated above in 
claim 1. 

As to dependent claim 7, ^^further comprising the step of determining whether the 
check sum of the encrypted transmission data of the transmission frame is identical to the 
value of the first integrity check field of the second integrity check step (i)" however '962 
teaches the checksum are determined and decrypted if they match. The motivation to combine 
ESP_2406 and '982 is the same as stated above in claim 1. 

As to dependent claim 8, ^4f the check sum is identical, determining that the 
transmission data is originated from an authenticated network device" however '962 
teaches "4. Then, for the AH protocol, given that NAT will be translating the client's source IP 
address to the previously leased NAT global IP address, compute the packet's AH authentication 
data as if the source IP address were equal to that global IP address and incorporate that 
authentication data into the AH header" in col. 10, lines 52-58. The motivation to combine 
ESP__2406 and '982 is the same as stated above in claim 1 . 

Conclusion 

7. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Ellen C Tran whose telephone number is 

(571) 272-3842. The examiner can normally be reached from 6:00 am to 4:00 pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's supervisor, 

Kambiz Zand can be reached on (571) 272-38 11. The fax phone number for the organization 

where tiiis application or proceeding is assigned is (571) 273-8300. 
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Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status infomiation for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 




Ellen Tran 
Patent Examiner 
Technology Center 2134 
23 January 2007 



